Is the file INVIS.VBS located on your computer? Then your computer is infected.
We do suggest you should remove INVIS.VBS from your computer as soon as possible.
INVIS.VBS is Trojan/Backdoor.
Kill the process INVIS.VBS and remove INVIS.VBS from the Windows startup.
Malware Analysis of INVIS.VBS
Full path on a computer: %Appdata%\PTSx32\invis.vbs
Detected by UnHackMe:
INVIS.VBS
Default location: %Appdata%\PTSx32\invis.vbs
Removal Results: Success
Number of reboot: 1
INVIS.VBS is known as:
Trojan.BtcMine.224
INVIS.VBS hash:
- MD5: c578d9653b22800c3eb6b6a51219bbb8
How to quickly detect INVIS.VBS presence?
![]( "Registry")
Registry:
![]( "Folders")
Folders:
![]( "Files")
Files:
Registry:- HKCU\Software\Microsoft\Windows\CurrentVersion\Run\AdobeUpdate: “wscript “%Appdata%\PTSx32\invis.vbs” “%Appdata%\PTSx32\bat.bat”"
Folders:- %Appdata%\PTSx32
Files:- %Appdata%\PTSx32\bat.bat
- %Appdata%\PTSx32\invis.vbs
- %Appdata%\PTSx32\winsvchost.exe